Summary of Cryptographic Authentication Algorithm Implementation Requirements for Routing Protocols

Bhatia, Manav; Manral, Vishwas

doi:10.17487/rfc6094

“…• IPv6 over Low-Power Wireless Personal Area Networks (6LowPANs) [9] • Routing protocol protection [10] such as Border Gateway Protocol (BGP)/BGP Monitoring Protocol (BMP) [11] and Open Shortest Path First (OSPFv3) [12] VPNs protect communications carried over public networks, such as the internet, as well as private networks, such as fiber networks or Multiprotocol Label Switching (MPLS) networks. A VPN can provide several types of data protection, including confidentiality, integrity, data origin authentication, replay protection, and access control.…”

Section: As Of the Date Of Publication And Following Call(s) For The mentioning

confidence: 99%

“…When an individual's private key is used to digitally sign data, only that same individual's corresponding public key can be used to verify the digital signature. Common algorithms that are used to generate and verify digital signatures include RSA, the Digital Signature Algorithm (DSA) 10 , and the Elliptic Curve Digital Signature Algorithm (ECDSA). NIST-approved digital signature algorithms are specified in FIPS 186 [34] [35].…”

Section: Peer Authenticationmentioning

confidence: 99%

“…9 eXtended Cipher Block Chaining. 10 DSA may not be allowed for signature generation in the future, see draft FIPS 186-5, https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.186-5-draft.pdf, for details other's public key and their own private key, they can establish an authenticated private channel through which they can communicate.…”

Section: Peer Authenticationmentioning

confidence: 99%

“…The virtual cloud is using the IPv4 private space IP network10.0.2.0/24. The cloud provider runs a virtual router on the IP address 10.0.2.254.…”

mentioning

confidence: 99%

See 2 more Smart Citations

Guide to IPsec VPNs

Barker¹,

Dang²,

Frankel³

et al. 2020

View full text Add to dashboard Cite

This publication has been developed by NIST in accordance with its statutory responsibilities under the Federal Information Security Modernization Act (FISMA) of 2014, 44 U.S.C. § 3551 et seq., Public Law (P.L.) 113-283. NIST is responsible for developing information security standards and guidelines, including minimum requirements for federal information systems, but such standards and guidelines shall not apply to national security systems without the express approval of appropriate federal officials exercising policy authority over such systems. This guideline is consistent with the requirements of the Office of Management and Budget (OMB) Circular A-130. Nothing in this publication should be taken to contradict the standards and guidelines made mandatory and binding on federal agencies by the Secretary of Commerce under statutory authority. Nor should these guidelines be interpreted as altering or superseding the existing authorities of the Secretary of Commerce, Director of the OMB, or any other federal official. This publication may be used by nongovernmental organizations on a voluntary basis and is not subject to copyright in the United States. Attribution would, however, be appreciated by NIST.

show abstract

“…In 183 practice, the terms "IPsec VPN," "IKEv2 VPN," "Cisco IPsec," "IPsec XAUTH," and 184 "L2TP/IPsec" all refer to IPsec-based VPN connections. Some examples of technologies and 185 protocols that use IKE and/or IPsec are: 186 • Ethernet VPN (EVPN) and Virtual eXtensible Local Area Network (VXLAN) [4] • Software-Defined Networking (SDN) and Software-Defined Wide Area Network (SDWAN) • Segment Routing [5] • Data Center Network Virtualization Overlay (NVO3) Networks [6] • Generic Network Virtualization Encapsulation (GENEVE) [7] • Smart Grid [8] • Constrained Application Protocol (CoAP) • Low-Power Wireless Personal Area Network (6LowPAN) [9] • Routing protocol protection [10] such as Border Gateway Protocol (BGP)/BGP Monitoring Protocol (BMP) [11] and Open Shortest Path First (OSPFv3) [12] VPNs protect communications carried over public networks such as the Internet as well as private networks such as fiber networks or Multi-Protocol Label Switching (MPLS) networks. A VPN can provide several types of data protection, including confidentiality, integrity, data origin authentication, replay protection, and access control.…”

Section: Executive Summarymentioning

confidence: 99%

Guide to IPsec VPNs

2019

Preprint

1

0

View full text Add to dashboard Cite

This publication has been developed by NIST in accordance with its statutory responsibilities under the Federal Information Security Modernization Act (FISMA) of 2014, 44 U.S.C. § 3551 et seq., Public Law (P.L.) 113-283. NIST is responsible for developing information security standards and guidelines, including minimum requirements for federal information systems, but such standards and guidelines shall not apply to national security systems without the express approval of appropriate federal officials exercising policy authority over such systems. This guideline is consistent with the requirements of the Office of Management and Budget (OMB) Circular A-130. Nothing in this publication should be taken to contradict the standards and guidelines made mandatory and binding on federal agencies by the Secretary of Commerce under statutory authority. Nor should these guidelines be interpreted as altering or superseding the existing authorities of the Secretary of Commerce, Director of the OMB, or any other federal official. This publication may be used by nongovernmental organizations on a voluntary basis and is not subject to copyright in the United States. Attribution would, however, be appreciated by NIST.

show abstract

Attack and Defense Strategies in Cyber-Physical Systems with Varying Levels of System and Opponent Knowledge

DeBruhl¹

2015

0

View full text Add to dashboard Cite

Summary of Cryptographic Authentication Algorithm Implementation Requirements for Routing Protocols

Cited by 3 publications

References 17 publications

Guide to IPsec VPNs

Guide to IPsec VPNs

Guide to IPsec VPNs

Attack and Defense Strategies in Cyber-Physical Systems with Varying Levels of System and Opponent Knowledge

Contact Info

Product

Resources

About